Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-26322

A code execution vulnerability exists in the XiaomiGetApps application product. This vulnerability is caused by the verification logic being bypassed, and an attacker can exploit this vulnerability to execute malicious code.

Published

2024-08-28T08:15:06.263

Last Modified

2024-09-12T17:27:10.637

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 8.8 (HIGH)

Weaknesses

Type: Primary
NVD-CWE-noinfo
Type: Secondary
CWE-94

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	mi	getapps	< 32.0.0.1	Yes

References

https://trust.mi.com/misrc/bulletins/advisory?cveId=542 Vendor Advisory ([email protected])